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CLAIMS 



1 . (Currently Amended) A method for control and maintenance of an operational 
organizational structure, the method comprising electronically : 

associating entities with cryptographic capabilities; 

organizing entities within the organizational structure as roles; and 

maintaining roles within the organizational structure. 

2. (Original) A method as in claim 1, wherein the method involves at least a public 
key infrastructure operation. 

3. (Original) A method as in claim 1 wherein the control and maintenance further 
comprises: 

assigning elements in said organizational structure to roles within said organizational 
structure. 



4. (Original) A method as in claim 1 wherein the control and maintenance further 
comprises: 

assigning elements in said organizational structure to groups within said 
organizational structure. 

5. (Canceled) 

6. (Original) A method as in claim 3 wherein at least some of said elements are 
already grouped elements. 

7. (Currently Amended) A method as in claim 1 wherein said cryptographic method 
involves access control technology. 

8. (Currently Amended) A method as in claim 1 wh e re wherein said cryptographic 
method involves at least an access control op e rations operation . 
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9. (Currently Amended) A method as in claim 1 wh e r e wherein said cryptographic 
method involv e involves at least a data-base operation. 

10. (Currently Amended) A method as in claim 1 wh e r e wherein said cryptographic 
method involve involves at least one operation implemented in a hardware device. 

1 1 . (Currently Amended) A method as in claim 1 wherein the operational 
organizational structure represent represents at least one commercial organization. 

12. (Currently Amended) A method as in claim 1 whoro wherein the operational 
organizational structure represents at least two organization organizations , and wherein one 
of said organizations performs at least one function on behalf of s e cond another of said 
organizations. 

13. (Currently Amended) A method as in claim 1 where wherein the cryptographic 
method for control further comprises changing software. 

14. (Currently Amended) A method as in claim 1 wh e r e wherein the cryptographic 
method for control further comprises changing hardware. 

15. (Currently Amended) A method as in claim 1 wh e r e wherein the cryptographic 
method for control further comprises moving hardware. 

16. (Original) A system for control and maintenance of an operational structure 
involving at least one cryptographic method, entities within organizations, characteristics of 
said entities and relationships between said entities, wherein the system comprises: 

maintaining capabilities of entities; 
maintaining functions of entities; 
maintaining characteristics of entities; 
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maintaining relationships of entities; and 

changing the maintained said entities said characteristics and said relationships. 

17. (Currently Amended) A system as in claim 16 where at least en one of said 
entities is an individual in an organization. 

18. (Currently Amended) A system as in claim 16 where at least en one of said 
entities is a group of individuals in an organization. 

19. (Original) A system as in claim 16 where at least one capability is a role in an 
organization. 

20. (Original) A system as in claim 16 where at least one capability is a task in an 
organization. 

21 . (Original) A system as in claim 16 where at least one function is an operation by 
functionary in an organization. 

22. (Original) A system as in claim 16 where at least one function is an operation by 
group of functionaries in an organization. 

23. (Original) A system as in claim 16 where said entities in an organization are 
represented in a public key infrastructure directory. 

24. (Original) A system as in claim 16 where at least one of said characteristics and 
said relationships is represented in a directory. 

25. (Currently Amended) A system as in claim 16 where at least one of said 
characteristics,! and at least one of said relationships , or both is represented in a public key 
infrastructure directory. 
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26. (Currently Amended) A system as in claim 16 where an operation of said syst e m's 
operations involv e system involves updating at least one directory. 

27. (Currently Amended) A system as in claim 16 where an operation of said syst e m's 
op e rations involv e system involves updating at least one public key infrastructure directory. 

28. (Original) A system as in claim 16 where said changing of the said maintained 
elements comprises change of information processing control structure. 

29. (Original) A system as in claim 16 where said changing of the said maintained 
elements comprises change of cryptographic certification information within the public-key 
infrastructure directories. 

30. (Original) A system as in claim 16 where said changing of the said maintained 
elements comprises change of databases. 

31. (Original) A system as in claim 16 where said changing of the said maintained 
elements comprises change of cryptographic certification information within the public-key 
infrastructure directories and further database changes. 

32. (Original) A system as in claim 16 where said entities, said characteristics and 
said relationships are maintained by combining databases components and components of 
certification authorities of a public key infrastructure. 

33. (Original) A system as in claim 16 where said entities are represented in one 
directory and said characteristics and said relationships are represented in a second directory. 

34. (Original) A system as in claim 16 where said entities are represented in at least 
first directory and said characteristics and said relationships are represented in at least second 
directory. 
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35. (Original) A system as in claim 16 comprising observers, where said entities said 
characteristics and said relationships are partially visible to various observers. 

36. (Currently Amended) A system as in claim 16 where an operation of said system 
comprises said system's op e ration compris e cryptographic key management operations. 

37. (Currently Amended) A system as in claim 16 where an operation of said system 
said system's operation is activated by at least one designated entity amongst said entities. 

38. (Currently Amended) A system as in claim 16 where an operation of said system 
said syst e m's op e ration is activated based on agreed upon rules. 

39. (Currently Amended) A system as in claim 16 where an operation of said system 
said syst e m's op e ration is activated based on authorizations. 

40. (Currently Amended) A system as in claim 16 where an operation of said system 
comprises said syst e m's op e ration is database maintenance operations involving said entities 
said characteristics and said relationships. 

41. (Original) A system as in claim 16 where said characteristics and said 
relationships define authorization rules. 

42. (Original) A system as in claim 16 where said characteristics and said 
relationships define authorization rules based on access structure. 

43. (Original) A system as in claim 16 where said characteristics and said 
relationships define authorization rules based on cryptographic capability. 

44. (Original) A system as in claim 16 where said characteristics and said 
relationships define authorization rules based on shared cryptographic capability. 



304421 12v1 



-6- 



9^fe, 



FRANKEL ET AL. -- 09/503,181 
Client/Matter: 061 047-0265650 ~ 



45. (Original) A system as in claim 16 with the additional operations of logging said 
system's operations. 

46. (Original) A system as in claim 16 with the additional operations of logging said 
system's operations, where said logging is performed in various locations in said system. 

47. (Original) A system as in claim 16 with the additional operations of monitoring 
operations within said system. 

48. (Original) A system as in claim 16 with the additional operations of time-stamping 
operations within said system. 

49. (Original) A system as in claim 16 where at least one of said system's operations 
is performed distributedly via communication. 

50. (Original) A system as in claim 16 where at least one of said system's operations 
is a distributed database operation. 

51. (Original) A system as in claim 16 where at least one of said system's operations 
involves physical handling of devices to one of said entities. 

52. (Currently Amended) A database system representing an organization involving 
directories representing entities, their characteristics, roles, and relationships together with 
their associations with cryptographic capabilities, the database system comprising the 
following transactional components: 

connection to cryptographic authorities representing the cryptographic capabilities 
associated with said entities, said characteristics and said relationships; 

a maintenance system by which said database and said cryptographic authorities are 
maintained in coordination and by authorized parties assuring the representation of said 
organization and said cryptographic capabilities are soundly associated as defined by the 
coordination directives; 
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maintenance transactions acting within said maintenance system, maintaining a view 
representing an organization. 

53. (Original) A system as in claim 52 wherein said organization comprises a plurality 
of entities. 

54. (Original) A system as in claim 52 wherein said cryptographic authorities is a 
plurality of at least one certification authorities. 

56T~(Original) A system as in claim 52 wherein said cryptographic authorities is a 
plurality of authorities organized hierarchically. 

Sff. (Original) A system as in claim 52 wherein said authorized parties are maintained 
by another instantiation of the system. 

58 >5. (Currently Amended) A system as in claim 52 wherein said authorized parties 
are assigned by management of said organization. 

&f59. (Currently Amended) A system as in claim 52 wherein said coordinating 
directives involve cryptographic fields assuring integrity of the operation. 

60T*(Original) A system as in claim 52 wherein said maintaining view representing an 
organization may present different characteristics and components to different outside 
reviewers. 

Jfrf? (Original) A system as in claim 52 wherein said cryptographic capabilities involve 
digital certificates. 

^T(Currently Amended) A system as in claim 52 wherein said organization compris e 
comprises various organizational units. 
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n j&3^(Currently Amended) A system as in claim 52 wherein said organization compns e 

^y/ of comprises various organizational units where entities are defined in one unit and their roles 
j are defined within a second unit. 
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